CVE-2023-3866
MEDIUM EPSS 96.2%
Published Aug 16, 202510mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Published Aug 16, 2025 10mo ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in the compound request This patch validate session id and tree id in compound request. If first operation in the compound is SMB2 ECHO request, ksmbd bypass session and tree validation. So work->sess and work->tcon could be NULL. If secound request in the compound access work->sess or tcon, It cause NULL pointer dereferecing error.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
96.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-476 NULL Pointer Dereference Memory Safety
Affected Products 10
References 4
- git.kernel.org https://git.kernel.org/stable/c/5005bcb4219156f1bf7587b185080ec1da08518e
- git.kernel.org https://git.kernel.org/stable/c/854156d12caa9d36de1cf5f084591c7686cc8a9d
- git.kernel.org https://git.kernel.org/stable/c/d1066c1b3663401cd23c0d6e60cdae750ce00c0f
- git.kernel.org https://git.kernel.org/stable/c/eb947403518ea3d93f6d89264bb1f5416bb0c7d0
Remediation
- git.kernel.org https://git.kernel.org/stable/c/5005bcb4219156f1bf7587b185080ec1da08518e
- git.kernel.org https://git.kernel.org/stable/c/854156d12caa9d36de1cf5f084591c7686cc8a9d
- git.kernel.org https://git.kernel.org/stable/c/d1066c1b3663401cd23c0d6e60cdae750ce00c0f
- git.kernel.org https://git.kernel.org/stable/c/eb947403518ea3d93f6d89264bb1f5416bb0c7d0